1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3 * Copyright © 2017 Keith Packard <keithp@keithp.com>
4 */
5 #include <linux/file.h>
6 #include <linux/uaccess.h>
7
8 #include <drm/drm_auth.h>
9 #include <drm/drm_crtc.h>
10 #include <drm/drm_drv.h>
11 #include <drm/drm_file.h>
12 #include <drm/drm_lease.h>
13 #include <drm/drm_print.h>
14
15 #include "drm_crtc_internal.h"
16 #include "drm_internal.h"
17
18 /* ANDROID:
19 * this is needed to get access to dentry_open, which the drm layer does
20 * need to do.
21 */
22 MODULE_IMPORT_NS(VFS_internal_I_am_really_a_filesystem_and_am_NOT_a_driver);
23
24 /**
25 * DOC: drm leasing
26 *
27 * DRM leases provide information about whether a DRM master may control a DRM
28 * mode setting object. This enables the creation of multiple DRM masters that
29 * manage subsets of display resources.
30 *
31 * The original DRM master of a device 'owns' the available drm resources. It
32 * may create additional DRM masters and 'lease' resources which it controls
33 * to the new DRM master. This gives the new DRM master control over the
34 * leased resources until the owner revokes the lease, or the new DRM master
35 * is closed. Some helpful terminology:
36 *
37 * - An 'owner' is a &struct drm_master that is not leasing objects from
38 * another &struct drm_master, and hence 'owns' the objects. The owner can be
39 * identified as the &struct drm_master for which &drm_master.lessor is NULL.
40 *
41 * - A 'lessor' is a &struct drm_master which is leasing objects to one or more
42 * other &struct drm_master. Currently, lessees are not allowed to
43 * create sub-leases, hence the lessor is the same as the owner.
44 *
45 * - A 'lessee' is a &struct drm_master which is leasing objects from some
46 * other &struct drm_master. Each lessee only leases resources from a single
47 * lessor recorded in &drm_master.lessor, and holds the set of objects that
48 * it is leasing in &drm_master.leases.
49 *
50 * - A 'lease' is a contract between the lessor and lessee that identifies
51 * which resources may be controlled by the lessee. All of the resources
52 * that are leased must be owned by or leased to the lessor, and lessors are
53 * not permitted to lease the same object to multiple lessees.
54 *
55 * The set of objects any &struct drm_master 'controls' is limited to the set
56 * of objects it leases (for lessees) or all objects (for owners).
57 *
58 * Objects not controlled by a &struct drm_master cannot be modified through
59 * the various state manipulating ioctls, and any state reported back to user
60 * space will be edited to make them appear idle and/or unusable. For
61 * instance, connectors always report 'disconnected', while encoders
62 * report no possible crtcs or clones.
63 *
64 * Since each lessee may lease objects from a single lessor, display resource
65 * leases form a tree of &struct drm_master. As lessees are currently not
66 * allowed to create sub-leases, the tree depth is limited to 1. All of
67 * these get activated simultaneously when the top level device owner changes
68 * through the SETMASTER or DROPMASTER IOCTL, so &drm_device.master points to
69 * the owner at the top of the lease tree (i.e. the &struct drm_master for which
70 * &drm_master.lessor is NULL). The full list of lessees that are leasing
71 * objects from the owner can be searched via the owner's
72 * &drm_master.lessee_idr.
73 */
74
75 #define drm_for_each_lessee(lessee, lessor) \
76 list_for_each_entry((lessee), &(lessor)->lessees, lessee_list)
77
78 static uint64_t drm_lease_idr_object;
79
drm_lease_owner(struct drm_master * master)80 struct drm_master *drm_lease_owner(struct drm_master *master)
81 {
82 while (master->lessor != NULL)
83 master = master->lessor;
84 return master;
85 }
86
87 static struct drm_master*
_drm_find_lessee(struct drm_master * master,int lessee_id)88 _drm_find_lessee(struct drm_master *master, int lessee_id)
89 {
90 lockdep_assert_held(&master->dev->mode_config.idr_mutex);
91 return idr_find(&drm_lease_owner(master)->lessee_idr, lessee_id);
92 }
93
_drm_lease_held_master(struct drm_master * master,int id)94 static int _drm_lease_held_master(struct drm_master *master, int id)
95 {
96 lockdep_assert_held(&master->dev->mode_config.idr_mutex);
97 if (master->lessor)
98 return idr_find(&master->leases, id) != NULL;
99 return true;
100 }
101
102 /* Checks if the given object has been leased to some lessee of drm_master */
_drm_has_leased(struct drm_master * master,int id)103 static bool _drm_has_leased(struct drm_master *master, int id)
104 {
105 struct drm_master *lessee;
106
107 lockdep_assert_held(&master->dev->mode_config.idr_mutex);
108 drm_for_each_lessee(lessee, master)
109 if (_drm_lease_held_master(lessee, id))
110 return true;
111 return false;
112 }
113
114 /* Called with idr_mutex held */
_drm_lease_held(struct drm_file * file_priv,int id)115 bool _drm_lease_held(struct drm_file *file_priv, int id)
116 {
117 bool ret;
118 struct drm_master *master;
119
120 if (!file_priv)
121 return true;
122
123 master = drm_file_get_master(file_priv);
124 if (!master)
125 return true;
126 ret = _drm_lease_held_master(master, id);
127 drm_master_put(&master);
128
129 return ret;
130 }
131
drm_lease_held(struct drm_file * file_priv,int id)132 bool drm_lease_held(struct drm_file *file_priv, int id)
133 {
134 struct drm_master *master;
135 bool ret;
136
137 if (!file_priv)
138 return true;
139
140 master = drm_file_get_master(file_priv);
141 if (!master)
142 return true;
143 if (!master->lessor) {
144 ret = true;
145 goto out;
146 }
147 mutex_lock(&master->dev->mode_config.idr_mutex);
148 ret = _drm_lease_held_master(master, id);
149 mutex_unlock(&master->dev->mode_config.idr_mutex);
150
151 out:
152 drm_master_put(&master);
153 return ret;
154 }
155
156 /*
157 * Given a bitmask of crtcs to check, reconstructs a crtc mask based on the
158 * crtcs which are visible through the specified file.
159 */
drm_lease_filter_crtcs(struct drm_file * file_priv,uint32_t crtcs_in)160 uint32_t drm_lease_filter_crtcs(struct drm_file *file_priv, uint32_t crtcs_in)
161 {
162 struct drm_master *master;
163 struct drm_device *dev;
164 struct drm_crtc *crtc;
165 int count_in, count_out;
166 uint32_t crtcs_out = 0;
167
168 if (!file_priv)
169 return crtcs_in;
170
171 master = drm_file_get_master(file_priv);
172 if (!master)
173 return crtcs_in;
174 if (!master->lessor) {
175 crtcs_out = crtcs_in;
176 goto out;
177 }
178 dev = master->dev;
179
180 count_in = count_out = 0;
181 mutex_lock(&master->dev->mode_config.idr_mutex);
182 list_for_each_entry(crtc, &dev->mode_config.crtc_list, head) {
183 if (_drm_lease_held_master(master, crtc->base.id)) {
184 uint32_t mask_in = 1ul << count_in;
185
186 if ((crtcs_in & mask_in) != 0) {
187 uint32_t mask_out = 1ul << count_out;
188
189 crtcs_out |= mask_out;
190 }
191 count_out++;
192 }
193 count_in++;
194 }
195 mutex_unlock(&master->dev->mode_config.idr_mutex);
196
197 out:
198 drm_master_put(&master);
199 return crtcs_out;
200 }
201
202 /*
203 * Uses drm_master_create to allocate a new drm_master, then checks to
204 * make sure all of the desired objects can be leased, atomically
205 * leasing them to the new drmmaster.
206 *
207 * ERR_PTR(-EACCES) some other master holds the title to any object
208 * ERR_PTR(-ENOENT) some object is not a valid DRM object for this device
209 * ERR_PTR(-EBUSY) some other lessee holds title to this object
210 * ERR_PTR(-EEXIST) same object specified more than once in the provided list
211 * ERR_PTR(-ENOMEM) allocation failed
212 */
drm_lease_create(struct drm_master * lessor,struct idr * leases)213 static struct drm_master *drm_lease_create(struct drm_master *lessor, struct idr *leases)
214 {
215 struct drm_device *dev = lessor->dev;
216 int error;
217 struct drm_master *lessee;
218 int object;
219 int id;
220 void *entry;
221
222 drm_dbg_lease(dev, "lessor %d\n", lessor->lessee_id);
223
224 lessee = drm_master_create(lessor->dev);
225 if (!lessee) {
226 drm_dbg_lease(dev, "drm_master_create failed\n");
227 return ERR_PTR(-ENOMEM);
228 }
229
230 mutex_lock(&dev->mode_config.idr_mutex);
231
232 idr_for_each_entry(leases, entry, object) {
233 error = 0;
234 if (!idr_find(&dev->mode_config.object_idr, object))
235 error = -ENOENT;
236 else if (_drm_has_leased(lessor, object))
237 error = -EBUSY;
238
239 if (error != 0) {
240 drm_dbg_lease(dev, "object %d failed %d\n", object, error);
241 goto out_lessee;
242 }
243 }
244
245 /* Insert the new lessee into the tree */
246 id = idr_alloc(&(drm_lease_owner(lessor)->lessee_idr), lessee, 1, 0, GFP_KERNEL);
247 if (id < 0) {
248 error = id;
249 goto out_lessee;
250 }
251
252 lessee->lessee_id = id;
253 lessee->lessor = drm_master_get(lessor);
254 list_add_tail(&lessee->lessee_list, &lessor->lessees);
255
256 /* Move the leases over */
257 lessee->leases = *leases;
258 drm_dbg_lease(dev, "new lessee %d %p, lessor %d %p\n",
259 lessee->lessee_id, lessee, lessor->lessee_id, lessor);
260
261 mutex_unlock(&dev->mode_config.idr_mutex);
262 return lessee;
263
264 out_lessee:
265 mutex_unlock(&dev->mode_config.idr_mutex);
266
267 drm_master_put(&lessee);
268
269 return ERR_PTR(error);
270 }
271
drm_lease_destroy(struct drm_master * master)272 void drm_lease_destroy(struct drm_master *master)
273 {
274 struct drm_device *dev = master->dev;
275
276 mutex_lock(&dev->mode_config.idr_mutex);
277
278 drm_dbg_lease(dev, "drm_lease_destroy %d\n", master->lessee_id);
279
280 /* This master is referenced by all lessees, hence it cannot be destroyed
281 * until all of them have been
282 */
283 WARN_ON(!list_empty(&master->lessees));
284
285 /* Remove this master from the lessee idr in the owner */
286 if (master->lessee_id != 0) {
287 drm_dbg_lease(dev, "remove master %d from device list of lessees\n",
288 master->lessee_id);
289 idr_remove(&(drm_lease_owner(master)->lessee_idr), master->lessee_id);
290 }
291
292 /* Remove this master from any lessee list it may be on */
293 list_del(&master->lessee_list);
294
295 mutex_unlock(&dev->mode_config.idr_mutex);
296
297 if (master->lessor) {
298 /* Tell the master to check the lessee list */
299 drm_sysfs_lease_event(dev);
300 drm_master_put(&master->lessor);
301 }
302
303 drm_dbg_lease(dev, "drm_lease_destroy done %d\n", master->lessee_id);
304 }
305
_drm_lease_revoke(struct drm_master * top)306 static void _drm_lease_revoke(struct drm_master *top)
307 {
308 int object;
309 void *entry;
310 struct drm_master *master = top;
311
312 lockdep_assert_held(&top->dev->mode_config.idr_mutex);
313
314 /*
315 * Walk the tree starting at 'top' emptying all leases. Because
316 * the tree is fully connected, we can do this without recursing
317 */
318 for (;;) {
319 drm_dbg_lease(master->dev, "revoke leases for %p %d\n",
320 master, master->lessee_id);
321
322 /* Evacuate the lease */
323 idr_for_each_entry(&master->leases, entry, object)
324 idr_remove(&master->leases, object);
325
326 /* Depth-first list walk */
327
328 /* Down */
329 if (!list_empty(&master->lessees)) {
330 master = list_first_entry(&master->lessees, struct drm_master, lessee_list);
331 } else {
332 /* Up */
333 while (master != top && master == list_last_entry(&master->lessor->lessees, struct drm_master, lessee_list))
334 master = master->lessor;
335
336 if (master == top)
337 break;
338
339 /* Over */
340 master = list_next_entry(master, lessee_list);
341 }
342 }
343 }
344
drm_lease_revoke(struct drm_master * top)345 void drm_lease_revoke(struct drm_master *top)
346 {
347 mutex_lock(&top->dev->mode_config.idr_mutex);
348 _drm_lease_revoke(top);
349 mutex_unlock(&top->dev->mode_config.idr_mutex);
350 }
351
validate_lease(struct drm_device * dev,int object_count,struct drm_mode_object ** objects,bool universal_planes)352 static int validate_lease(struct drm_device *dev,
353 int object_count,
354 struct drm_mode_object **objects,
355 bool universal_planes)
356 {
357 int o;
358 int has_crtc = -1;
359 int has_connector = -1;
360 int has_plane = -1;
361
362 /* we want to confirm that there is at least one crtc, plane
363 connector object. */
364
365 for (o = 0; o < object_count; o++) {
366 if (objects[o]->type == DRM_MODE_OBJECT_CRTC && has_crtc == -1) {
367 has_crtc = o;
368 }
369 if (objects[o]->type == DRM_MODE_OBJECT_CONNECTOR && has_connector == -1)
370 has_connector = o;
371
372 if (universal_planes) {
373 if (objects[o]->type == DRM_MODE_OBJECT_PLANE && has_plane == -1)
374 has_plane = o;
375 }
376 }
377 if (has_crtc == -1 || has_connector == -1)
378 return -EINVAL;
379 if (universal_planes && has_plane == -1)
380 return -EINVAL;
381 return 0;
382 }
383
fill_object_idr(struct drm_device * dev,struct drm_file * lessor_priv,struct idr * leases,int object_count,u32 * object_ids)384 static int fill_object_idr(struct drm_device *dev,
385 struct drm_file *lessor_priv,
386 struct idr *leases,
387 int object_count,
388 u32 *object_ids)
389 {
390 struct drm_mode_object **objects;
391 u32 o;
392 int ret;
393 bool universal_planes = READ_ONCE(lessor_priv->universal_planes);
394
395 objects = kcalloc(object_count, sizeof(struct drm_mode_object *),
396 GFP_KERNEL);
397 if (!objects)
398 return -ENOMEM;
399
400 /* step one - get references to all the mode objects
401 and check for validity. */
402 for (o = 0; o < object_count; o++) {
403 objects[o] = drm_mode_object_find(dev, lessor_priv,
404 object_ids[o],
405 DRM_MODE_OBJECT_ANY);
406 if (!objects[o]) {
407 ret = -ENOENT;
408 goto out_free_objects;
409 }
410
411 if (!drm_mode_object_lease_required(objects[o]->type)) {
412 DRM_DEBUG_KMS("invalid object for lease\n");
413 ret = -EINVAL;
414 goto out_free_objects;
415 }
416 }
417
418 ret = validate_lease(dev, object_count, objects, universal_planes);
419 if (ret) {
420 drm_dbg_lease(dev, "lease validation failed\n");
421 goto out_free_objects;
422 }
423
424 /* add their IDs to the lease request - taking into account
425 universal planes */
426 for (o = 0; o < object_count; o++) {
427 struct drm_mode_object *obj = objects[o];
428 u32 object_id = objects[o]->id;
429
430 drm_dbg_lease(dev, "Adding object %d to lease\n", object_id);
431
432 /*
433 * We're using an IDR to hold the set of leased
434 * objects, but we don't need to point at the object's
435 * data structure from the lease as the main object_idr
436 * will be used to actually find that. Instead, all we
437 * really want is a 'leased/not-leased' result, for
438 * which any non-NULL pointer will work fine.
439 */
440 ret = idr_alloc(leases, &drm_lease_idr_object , object_id, object_id + 1, GFP_KERNEL);
441 if (ret < 0) {
442 drm_dbg_lease(dev, "Object %d cannot be inserted into leases (%d)\n",
443 object_id, ret);
444 goto out_free_objects;
445 }
446 if (obj->type == DRM_MODE_OBJECT_CRTC && !universal_planes) {
447 struct drm_crtc *crtc = obj_to_crtc(obj);
448
449 ret = idr_alloc(leases, &drm_lease_idr_object, crtc->primary->base.id, crtc->primary->base.id + 1, GFP_KERNEL);
450 if (ret < 0) {
451 drm_dbg_lease(dev, "Object primary plane %d cannot be inserted into leases (%d)\n",
452 object_id, ret);
453 goto out_free_objects;
454 }
455 if (crtc->cursor) {
456 ret = idr_alloc(leases, &drm_lease_idr_object, crtc->cursor->base.id, crtc->cursor->base.id + 1, GFP_KERNEL);
457 if (ret < 0) {
458 drm_dbg_lease(dev, "Object cursor plane %d cannot be inserted into leases (%d)\n",
459 object_id, ret);
460 goto out_free_objects;
461 }
462 }
463 }
464 }
465
466 ret = 0;
467 out_free_objects:
468 for (o = 0; o < object_count; o++) {
469 if (objects[o])
470 drm_mode_object_put(objects[o]);
471 }
472 kfree(objects);
473 return ret;
474 }
475
476 /*
477 * The master associated with the specified file will have a lease
478 * created containing the objects specified in the ioctl structure.
479 * A file descriptor will be allocated for that and returned to the
480 * application.
481 */
drm_mode_create_lease_ioctl(struct drm_device * dev,void * data,struct drm_file * lessor_priv)482 int drm_mode_create_lease_ioctl(struct drm_device *dev,
483 void *data, struct drm_file *lessor_priv)
484 {
485 struct drm_mode_create_lease *cl = data;
486 size_t object_count;
487 int ret = 0;
488 struct idr leases;
489 struct drm_master *lessor;
490 struct drm_master *lessee = NULL;
491 struct file *lessee_file = NULL;
492 struct file *lessor_file = lessor_priv->filp;
493 struct drm_file *lessee_priv;
494 int fd = -1;
495 uint32_t *object_ids;
496
497 /* Can't lease without MODESET */
498 if (!drm_core_check_feature(dev, DRIVER_MODESET))
499 return -EOPNOTSUPP;
500
501 if (cl->flags && (cl->flags & ~(O_CLOEXEC | O_NONBLOCK))) {
502 drm_dbg_lease(dev, "invalid flags\n");
503 return -EINVAL;
504 }
505
506 lessor = drm_file_get_master(lessor_priv);
507 /* Do not allow sub-leases */
508 if (lessor->lessor) {
509 drm_dbg_lease(dev, "recursive leasing not allowed\n");
510 ret = -EINVAL;
511 goto out_lessor;
512 }
513
514 object_count = cl->object_count;
515
516 /* Handle leased objects, if any */
517 idr_init(&leases);
518 if (object_count != 0) {
519 object_ids = memdup_array_user(u64_to_user_ptr(cl->object_ids),
520 object_count, sizeof(__u32));
521 if (IS_ERR(object_ids)) {
522 ret = PTR_ERR(object_ids);
523 idr_destroy(&leases);
524 goto out_lessor;
525 }
526
527 /* fill and validate the object idr */
528 ret = fill_object_idr(dev, lessor_priv, &leases,
529 object_count, object_ids);
530 kfree(object_ids);
531 if (ret) {
532 drm_dbg_lease(dev, "lease object lookup failed: %i\n", ret);
533 idr_destroy(&leases);
534 goto out_lessor;
535 }
536 }
537
538 /* Allocate a file descriptor for the lease */
539 fd = get_unused_fd_flags(cl->flags & (O_CLOEXEC | O_NONBLOCK));
540 if (fd < 0) {
541 idr_destroy(&leases);
542 ret = fd;
543 goto out_lessor;
544 }
545
546 drm_dbg_lease(dev, "Creating lease\n");
547 /* lessee will take the ownership of leases */
548 lessee = drm_lease_create(lessor, &leases);
549
550 if (IS_ERR(lessee)) {
551 ret = PTR_ERR(lessee);
552 idr_destroy(&leases);
553 goto out_leases;
554 }
555
556 /* Clone the lessor file to create a new file for us */
557 drm_dbg_lease(dev, "Allocating lease file\n");
558 lessee_file = file_clone_open(lessor_file);
559 if (IS_ERR(lessee_file)) {
560 ret = PTR_ERR(lessee_file);
561 goto out_lessee;
562 }
563
564 lessee_priv = lessee_file->private_data;
565 /* Change the file to a master one */
566 drm_master_put(&lessee_priv->master);
567 lessee_priv->master = lessee;
568 lessee_priv->is_master = 1;
569 lessee_priv->authenticated = 1;
570
571 /* Pass fd back to userspace */
572 drm_dbg_lease(dev, "Returning fd %d id %d\n", fd, lessee->lessee_id);
573 cl->fd = fd;
574 cl->lessee_id = lessee->lessee_id;
575
576 /* Hook up the fd */
577 fd_install(fd, lessee_file);
578
579 drm_master_put(&lessor);
580 drm_dbg_lease(dev, "drm_mode_create_lease_ioctl succeeded\n");
581 return 0;
582
583 out_lessee:
584 drm_master_put(&lessee);
585
586 out_leases:
587 put_unused_fd(fd);
588
589 out_lessor:
590 drm_master_put(&lessor);
591 drm_dbg_lease(dev, "drm_mode_create_lease_ioctl failed: %d\n", ret);
592 return ret;
593 }
594
drm_mode_list_lessees_ioctl(struct drm_device * dev,void * data,struct drm_file * lessor_priv)595 int drm_mode_list_lessees_ioctl(struct drm_device *dev,
596 void *data, struct drm_file *lessor_priv)
597 {
598 struct drm_mode_list_lessees *arg = data;
599 __u32 __user *lessee_ids = (__u32 __user *) (uintptr_t) (arg->lessees_ptr);
600 __u32 count_lessees = arg->count_lessees;
601 struct drm_master *lessor, *lessee;
602 int count;
603 int ret = 0;
604
605 if (arg->pad)
606 return -EINVAL;
607
608 /* Can't lease without MODESET */
609 if (!drm_core_check_feature(dev, DRIVER_MODESET))
610 return -EOPNOTSUPP;
611
612 lessor = drm_file_get_master(lessor_priv);
613 drm_dbg_lease(dev, "List lessees for %d\n", lessor->lessee_id);
614
615 mutex_lock(&dev->mode_config.idr_mutex);
616
617 count = 0;
618 drm_for_each_lessee(lessee, lessor) {
619 /* Only list un-revoked leases */
620 if (!idr_is_empty(&lessee->leases)) {
621 if (count_lessees > count) {
622 drm_dbg_lease(dev, "Add lessee %d\n",
623 lessee->lessee_id);
624 ret = put_user(lessee->lessee_id, lessee_ids + count);
625 if (ret)
626 break;
627 }
628 count++;
629 }
630 }
631
632 drm_dbg_lease(dev, "Lessor leases to %d\n", count);
633 if (ret == 0)
634 arg->count_lessees = count;
635
636 mutex_unlock(&dev->mode_config.idr_mutex);
637 drm_master_put(&lessor);
638
639 return ret;
640 }
641
642 /* Return the list of leased objects for the specified lessee */
drm_mode_get_lease_ioctl(struct drm_device * dev,void * data,struct drm_file * lessee_priv)643 int drm_mode_get_lease_ioctl(struct drm_device *dev,
644 void *data, struct drm_file *lessee_priv)
645 {
646 struct drm_mode_get_lease *arg = data;
647 __u32 __user *object_ids = (__u32 __user *) (uintptr_t) (arg->objects_ptr);
648 __u32 count_objects = arg->count_objects;
649 struct drm_master *lessee;
650 struct idr *object_idr;
651 int count;
652 void *entry;
653 int object;
654 int ret = 0;
655
656 if (arg->pad)
657 return -EINVAL;
658
659 /* Can't lease without MODESET */
660 if (!drm_core_check_feature(dev, DRIVER_MODESET))
661 return -EOPNOTSUPP;
662
663 lessee = drm_file_get_master(lessee_priv);
664 drm_dbg_lease(dev, "get lease for %d\n", lessee->lessee_id);
665
666 mutex_lock(&dev->mode_config.idr_mutex);
667
668 if (lessee->lessor == NULL)
669 /* owner can use all objects */
670 object_idr = &lessee->dev->mode_config.object_idr;
671 else
672 /* lessee can only use allowed object */
673 object_idr = &lessee->leases;
674
675 count = 0;
676 idr_for_each_entry(object_idr, entry, object) {
677 if (count_objects > count) {
678 drm_dbg_lease(dev, "adding object %d\n", object);
679 ret = put_user(object, object_ids + count);
680 if (ret)
681 break;
682 }
683 count++;
684 }
685
686 DRM_DEBUG("lease holds %d objects\n", count);
687 if (ret == 0)
688 arg->count_objects = count;
689
690 mutex_unlock(&dev->mode_config.idr_mutex);
691 drm_master_put(&lessee);
692
693 return ret;
694 }
695
696 /*
697 * This removes all of the objects from the lease without
698 * actually getting rid of the lease itself; that way all
699 * references to it still work correctly
700 */
drm_mode_revoke_lease_ioctl(struct drm_device * dev,void * data,struct drm_file * lessor_priv)701 int drm_mode_revoke_lease_ioctl(struct drm_device *dev,
702 void *data, struct drm_file *lessor_priv)
703 {
704 struct drm_mode_revoke_lease *arg = data;
705 struct drm_master *lessor;
706 struct drm_master *lessee;
707 int ret = 0;
708
709 drm_dbg_lease(dev, "revoke lease for %d\n", arg->lessee_id);
710
711 /* Can't lease without MODESET */
712 if (!drm_core_check_feature(dev, DRIVER_MODESET))
713 return -EOPNOTSUPP;
714
715 lessor = drm_file_get_master(lessor_priv);
716 mutex_lock(&dev->mode_config.idr_mutex);
717
718 lessee = _drm_find_lessee(lessor, arg->lessee_id);
719
720 /* No such lessee */
721 if (!lessee) {
722 ret = -ENOENT;
723 goto fail;
724 }
725
726 /* Lease is not held by lessor */
727 if (lessee->lessor != lessor) {
728 ret = -EACCES;
729 goto fail;
730 }
731
732 _drm_lease_revoke(lessee);
733
734 fail:
735 mutex_unlock(&dev->mode_config.idr_mutex);
736 drm_master_put(&lessor);
737
738 return ret;
739 }
740